We’ve already stressed on the importance of strong password in the security check series. And i’m sure that some of you’ll be surprised to find out that “Username” of the blog plays an important role in the security of the blog. If you don’t tend to agree, then here’s some food for thought – Will it be difficult if you were to guess only password or will it be difficult for you to guess both username & password?

While you ponder over the question (are you still thinking about it? if the answer is yes, go ahead and take these mind exercises or play these games), I would remind you to ensure that you subscribe to our blog for regular tips like these.

WordPress by default has “admin” as the username and thus it becomes easier for the hackers to run the bruteforce attack on your blog. If you use default username (i.e. “admin”), they just have to work on the password, however if you don’t use this username and have something different or personal, then it’ll be equally difficult for the hackers to crack the username and password (this explanation is for those who are still thinking about the question). Anyway, here are some of the steps that you should perform to ensure that you are safe from the “username” point of view as well -

1. Rename the admin username -

a. Using your webhost’s MySQL admin tool (e.g. phpmyadmin), locate and select your WordPress database.
b. Then – locate and select the wp_users table (wp prefix may differ) and then click the browse icon.
c. Locate “admin” and click the edit icon.
d. Under the user_login section, change “admin” to your preferred name and click go.

2. Mention your public name in profile – WordPress allows you to change your display name and gives the option of displaying the username, nickname, first name or full name as the author name in the post. It becomes an important step because by default, it displays your username as the author name.

So, you should specify the first name, last name and if you want you may specify the nickname too and then change the display name accordingly.

3. Create another username – I’ve been an avid supporter of not using the admin username for day to day stuff. It’s always sensible to have an extra and limited account. I will suggest you to add another username for your blog and give it the role of “editor” instead of admin rights and use it for everyday task.

I hope that you’ll be finding this series a little bit useful and that you’ll be able to keep your blog safe from the prying eyes!

9 Comment

Featured Designs

Parent Society

Parent Society

Marijuana Maps

Marijuana Maps

Cake Journal

Cake Journal

CopyKat Recipes

CopyKat Recipes

Jessica Denay

Jessica Denay

Keith Ferrazzi

Keith Ferrazzi

Rennaissance Yoga

Rennaissance Yoga

Brink Zone

Brink Zone

Illustrious Author

Illustrious Author

Boca Care

Boca Care

KingsCast

Kingscast

Notecook

Note Cook

My Business Musings

My Business Musings

9 Responses so far | Have Your Say!

  1. Good point here ! Most people tend to keep “admin” as account and even as author name, when it is so simple to change it and make the job of hackers a little bit more difficult.

    For those who do not want to play with mySQL, you can can create a new admin user through the admin panel, and then connect with the newly created user and delete the previous one. That’s one of the first things to do with setting up a WordPress blog in my opinion!

  2. @ hd-J
    I agree… I was one of those that left it admin on default. Even forgot to change my name to display my full name instead of username on posts.

  3. Very good point – lots of bloggers just stick with the default “admin”, and don’t realize they’re leaving themselves wide open.

    Thank you for sharing this valuable info!

    Lee

  4. It’s such an easy thing to do, but so many people don’t do it!

    Your username should almost be a password in itself, making a hackers life that much harder.

  5. @all – thank you everyone for taking your time to leave the comments. I’m glad that you all agree to this point. It’s a simplest thing and even I wonder that why people don’t do this bit for their blog’s security.

  6. It is really nice when someone think about this type of difficult matter and make it easy to understand.

  7. Most people use the obvious, instead of thinking about something hard to guess. I don`t know a single password of my long list, if I ever can remember one then it`s useless.

Trackbacks/Pingbacks